Privacy Policy — RUTIN

RUTIN is a community-structured social platform that enables users to:

• create identities
• join communities
• participate in governance voting
• share content
• communicate
• elect community leaders

RUTIN operates initially in India.

We collect only necessary information required for platform functionality.

A. Account Information

When registering:

• phone number
• OTP verification status
• user ID
• identity preferences

We do NOT require:

• Aadhaar
• PAN
• passport
• biometrics

unless future verification programs explicitly request consent.

RUTIN allows multiple identities:

• Public Identity (pblc)
• Private Identity (pvt)
• Professional Identity (prof)

Each identity:

• has separate visibility
• may have different permissions
• may participate differently in communities

Users control identity usage.

When you join communities:

we store:

• community membership status
• votes
• rule participation
• leader elections
• governance interactions

These enable democratic governance features.

When posting:

we store:

• posts
• comments
• reactions
• votes
• messages
• media metadata
• timestamps
• community context
• identity context

Deleted content may remain temporarily in secure backup systems for safety and compliance purposes.

We may collect:

• IP address
• device type
• browser/app version
• network provider
• access timestamps
• session activity logs

Purpose:

• security
• fraud detection
• performance improvement
• rate-limit enforcement

RUTIN does NOT collect GPS location.

Approximate region may be inferred from:

• IP address
• network routing

Used only for:

• security monitoring
• abuse prevention
• regional compliance

Your data is used to:

• create accounts
• authenticate users
• enable communities
• enable governance voting
• enable leader election systems
• enable moderation safety
• deliver notifications
• protect users from abuse
• detect spam or fraud
• improve platform reliability

We do NOT sell personal data.

Processing occurs based on:

• user consent
• legitimate platform operation
• security enforcement
• legal compliance obligations

Users may withdraw consent by deleting their account.

We do NOT sell data to advertisers.

We may share data only with:

• cloud infrastructure providers
• security monitoring providers
• law enforcement (when legally required)
• government authorities (lawful requests only)

All requests must follow Indian law.

Data may be stored on secure servers located in:

• India
• or compliant global infrastructure providers

All storage follows reasonable security practices under IT Rules 2011.

Retention depends on type:

Some records retained longer if required by law.

Users may request deletion of:

• account
• identities
• content
• communities (if owner)

Deletion requests processed within reasonable time.

Some legal retention exceptions apply.

You have rights to:

• access your data
• correct inaccurate data
• withdraw consent
• request deletion
• file grievance complaint

Requests handled through grievance officer.

(Contact section below)

RUTIN is intended for users aged:

16+

Users below this age must not register without guardian consent.

If underage usage detected:

account may be suspended or removed

Child safety violations are escalated immediately.

We implement:

• JWT authentication
• rate limiting
• identity safety enforcement
• community moderation layers
• admin escalation controls
• governance transparency logs

These protect users from abuse.

Communities may share external links.

RUTIN is not responsible for:

• external website privacy policies
• third-party tracking
• external services

Users should review external policies separately.

As required under IT Rules 2021:

Grievance Officer:

(You can change email later if needed.)

This policy may change when:

• laws change
• features evolve
• security improves
• governance expands

Users will be notified of major updates.

For privacy, security, or data requests:

security@rutin.co.in